Skip to content
MalwareWiki

Malware

Casper

ESET describes Casper as a well-developed reconnaissance tool, making extensive efforts to remain unseen on targeted machines.

Casper is a Windows malware family operated by SNOWGLOBE.

Background

ESET characterizes Casper as a polished reconnaissance tool that goes to considerable lengths to stay hidden on the systems it infects, with particularly noteworthy techniques aimed at evading anti-malware products. It was deployed against Syrian targets in April 2014, making it the most recent publicly known malware attributed to this group at the time.

Source: Malpedia (Fraunhofer FKIE).